$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/i4FIaLZLUt8RBiWa5_651zVlU98.roa File: i4FIaLZLUt8RBiWa5_651zVlU98.roa (raw, json) Hash identifier: g6y3tsltvIR6+TX0LHurwfpYpXrR99UGSKWkl8LV/9k= Subject key identifier: 8B:81:48:68:B6:4B:52:DF:11:06:25:9A:E7:FE:B9:D7:35:65:53:DF Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 108C Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/i4FIaLZLUt8RBiWa5_651zVlU98.roa Signing time: Fri 22 Aug 2025 08:57:53 +0000 ROA not before: Fri 22 Aug 2025 08:57:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18424 IP address blocks: 103.136.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4236 (0x108c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 22 08:57:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8B814868B64B52DF1106259AE7FEB9D7356553DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:95:a4:7a:ea:95:79:d5:fa:5b:ad:27:2e:8d: 2d:b7:8b:0a:6c:a3:6a:8e:cf:73:e1:f4:c3:26:a8: d5:71:34:65:10:76:38:37:e4:61:9c:b1:02:b5:a2: 65:e9:b7:51:15:b9:80:36:8c:5b:52:d6:56:42:0e: c9:66:30:e2:96:21:d0:90:36:3e:d8:98:c2:32:5a: f8:ab:b8:14:75:5a:37:c7:d4:80:cb:d3:f2:ca:07: 14:87:ee:75:83:c0:d9:19:e2:53:2b:1c:0a:d7:3e: c9:99:cd:0d:e8:e6:2e:f6:e9:d8:98:8f:8a:0a:2e: 2e:1f:3b:cd:6d:ac:07:7a:27:21:e0:61:ed:5c:c3: 82:f5:07:be:4d:69:6b:3f:0d:e1:d9:e2:74:23:35: 2c:24:38:0f:c4:7c:a3:b3:37:58:89:c2:64:4c:bf: 68:c8:5a:1e:68:83:ba:d5:3f:47:b3:76:f3:ae:b8: fd:32:91:64:5f:19:5d:f7:8f:c6:6f:17:99:85:68: b7:07:19:22:c4:30:d8:8a:1c:88:09:74:ba:d5:f8: c4:c9:49:95:62:47:ae:87:62:4b:71:f5:73:0a:19: cd:20:f5:2b:74:c2:c5:fc:4e:dd:e4:f4:26:13:7b: 11:d1:c7:5e:16:95:cc:28:f0:45:24:99:fb:1a:a5: a3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:81:48:68:B6:4B:52:DF:11:06:25:9A:E7:FE:B9:D7:35:65:53:DF X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/i4FIaLZLUt8RBiWa5_651zVlU98.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:d6:83:ef:23:2c:62:79:36:14:83:07:13:0e:ec:32:08:5b: 25:0f:87:e2:5a:f0:51:62:60:a7:99:d3:fa:65:f0:f8:65:13: 8c:cf:a1:42:37:08:fc:14:0e:45:98:2d:fd:36:3f:b9:0b:c5: d3:05:91:34:5b:36:d2:bd:f9:a4:4d:d6:ea:4b:e4:04:99:de: 49:53:8f:c4:c9:62:eb:af:c9:d1:c9:67:32:e3:72:ca:5b:34: c7:c9:b3:59:5c:0f:01:6a:30:2e:6c:5d:95:f5:55:20:29:4f: 4e:63:59:0d:44:46:ed:c5:ed:5e:8c:7f:9a:51:d2:c9:ed:39: 17:c4:ba:15:17:d8:a5:20:97:f9:cb:51:34:60:ad:9d:87:6e: 3e:bb:d2:75:78:a9:f4:32:65:46:41:8b:a0:7f:eb:86:1d:ea: f0:b9:8e:25:63:4b:36:0e:a1:d3:fe:ee:68:b3:d9:6b:4c:e9: 36:0e:cf:69:b5:5b:ca:ec:01:8c:59:56:1a:36:ce:ce:ea:f6: 43:62:5f:55:14:a6:eb:a1:52:57:31:4c:32:81:d2:2b:9a:02: f1:40:3c:65:f3:b6:70:f0:27:a2:24:2f:6a:4e:2e:55:be:f3: c9:0d:a3:3a:c6:e9:a9:3a:84:5f:fd:20:89:96:a7:02:eb:63: 4c:3d:f9:01 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTA4MjIw ODU3NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhCODE0ODY4QjY0QjUy REYxMTA2MjU5QUU3RkVCOUQ3MzU2NTUzREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+laR66pV51fpbrScujS23iwpso2qOz3Ph9MMmqNVxNGUQdjg3 5GGcsQK1omXpt1EVuYA2jFtS1lZCDslmMOKWIdCQNj7YmMIyWviruBR1WjfH1IDL 0/LKBxSH7nWDwNkZ4lMrHArXPsmZzQ3o5i726diYj4oKLi4fO81trAd6JyHgYe1c w4L1B75NaWs/DeHZ4nQjNSwkOA/EfKOzN1iJwmRMv2jIWh5og7rVP0ezdvOuuP0y kWRfGV33j8ZvF5mFaLcHGSLEMNiKHIgJdLrV+MTJSZViR66HYktx9XMKGc0g9St0 wsX8Tt3k9CYTexHRx14Wlcwo8EUkmfsapaMhAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUi4FIaLZLUt8RBiWa5/651zVlU98wHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL2k0RklhTFpMVXQ4UkJpV2E1XzY1MXpW bFU5OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ KoZIhvcNAQELBQADggEBABrWg+8jLGJ5NhSDBxMO7DIIWyUPh+Ja8FFiYKeZ0/pl 8PhlE4zPoUI3CPwUDkWYLf02P7kLxdMFkTRbNtK9+aRN1upL5ASZ3klTj8TJYuuv ydHJZzLjcspbNMfJs1lcDwFqMC5sXZX1VSApT05jWQ1ERu3F7V6Mf5pR0sntORfE uhUX2KUgl/nLUTRgrZ2Hbj670nV4qfQyZUZBi6B/64Yd6vC5jiVjSzYOodP+7miz 2WtM6TYOz2m1W8rsAYxZVho2zs7q9kNiX1UUpuuhUlcxTDKB0iuaAvFAPGXztnDw J6IkL2pOLlW+88kNozrG6ak6hF/9IImWpwLrY0w9+QE= -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:19 2025 by rpki-client